Skip to content

Security: zitadel/nextgen

Security

SECURITY.md

Security Policy

Reporting Security Issues

This repository contains a pre-release Zitadel preview. We are not yet accepting external code contributions here, but security reports are welcome and should follow the process below.

We take the security of ZITADEL very seriously. If you believe you have found a security vulnerability in ZITADEL, report it to us immediately.

Please do not report security-related findings publicly via GitHub issues. Public disclosure of a security vulnerability could put the ZITADEL community at risk. Instead, use our official vulnerability disclosure process.

Vulnerability Disclosure Process

Vulnerabilities should be reported through our dedicated portal: zitadel.com/vulnerability

For more details on our vulnerability policy, including scope and expectations, refer to our official policy document: ZITADEL Vulnerability Disclosure Policy

Definitive Source

When in doubt, the authoritative and most up-to-date source for our security reporting information is always our security.txt file: zitadel.com/.well-known/security.txt


We appreciate your help in keeping ZITADEL and its community safe.

There aren't any published security advisories